From: Armin Kuster <akuster@mvista.com>
Date: Tue, 3 May 2016 13:33:36 +0000 (-0700)
Subject: librsvg: Security fixes via update to 2.40.15
X-Git-Tag: uninative-1.0~149
X-Git-Url: https://code.ossystems.io/gitweb?a=commitdiff_plain;h=76f061c91fd00370e33bfc3d45ff98d8b3f63c41;p=openembedded-core.git

librsvg: Security fixes via update to 2.40.15

CVE-2016-4347 librsvg2: DoS parsing SVGs with circular definitions in certain rsvg_cairo_*() functions

CVE-2016-4348 librsvg2: DoS parsing SVGs with circular definitions _rsvg_css_normalize_font_size() function

Signed-off-by: Armin Kuster <akuster@mvista.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
---

diff --git a/meta/recipes-gnome/librsvg/librsvg_2.40.13.bb b/meta/recipes-gnome/librsvg/librsvg_2.40.15.bb
similarity index 91%
rename from meta/recipes-gnome/librsvg/librsvg_2.40.13.bb
rename to meta/recipes-gnome/librsvg/librsvg_2.40.15.bb
index 2ac52f7797..caa6a24c9e 100644
--- a/meta/recipes-gnome/librsvg/librsvg_2.40.13.bb
+++ b/meta/recipes-gnome/librsvg/librsvg_2.40.15.bb
@@ -14,8 +14,8 @@ inherit autotools pkgconfig gnomebase gtk-doc pixbufcache upstream-version-is-ev
 
 SRC_URI += "file://gtk-option.patch"
 
-SRC_URI[archive.md5sum] = "ad03780e12c56e52474d8edf86976c73"
-SRC_URI[archive.sha256sum] = "4d6ea93ec05f5dabe7262d711d246a0a99b2311e215360dd3dcabd6afe3b9804"
+SRC_URI[archive.md5sum] = "3a66ab5b4fe1fb43b471708e4ff39a0e"
+SRC_URI[archive.sha256sum] = "d9cac4a123eec6e553a26e120979bab7425def9ae7ce7c079eba5e4a45db05f4"
 
 CACHED_CONFIGUREVARS = "ac_cv_path_GDK_PIXBUF_QUERYLOADERS=${STAGING_LIBDIR_NATIVE}/gdk-pixbuf-2.0/gdk-pixbuf-query-loaders"